Mobile commerce payment system

ABSTRACT

A mobile commerce system and components thereof are provided in which multiple wireless mobile communications devices (mobile devices) each has a unique electronic identification and processing circuit capable of encrypting data utilizing an encryption key and a first software application providing connectivity to commercial webpage servers for purposes that include the conduct of selected transactions involving a payment for goods or services. Each mobile device is independently enabled to conduct financial transactions in real time by communication with a financial institution. Each mobile device further has a second software application termed mobile payment application adapted to interact with the first application to receive data as to a payment required to conclude a transaction conducted by way of a commercial webpage server. The mobile payment application initiates an instruction to the financial institution to make a payment to a payee designated by way of such data wherein the instruction is encrypted utilizing the unique electronic identification and processing circuit.

CROSS REFERENCE TO RELATED APPLICATIONS

The present application is a National Phase Application of International Application No. PCT/IB2009/005566 filed May 12, 2009, which claims priority to South African Patent Application No. 2008/04181, filed May 14, 2008, which applications are incorporated herein fully by this reference.

FIELD OF THE INVENTION

This invention relates to a mobile commerce system that includes a payment system whereby goods or services can be located and selected using communications between a mobile communications device and the webpage server of a supplier and wherein payment is required to be made for the selected goods or services.

More particularly, the invention relates to a mobile commerce system in which the mobile communications devices each include a unique electronic identification and processing circuit capable of encrypting data utilizing an encryption key. A typical unique electronic identification and processing circuit is that of the well-known SIM card that can be used in cellular telephones or other wireless communications devices for identification and encryption purposes.

BACKGROUND TO THE INVENTION

Applicant believes that there is considerable potential in the mobile commerce field in spite of the ever increasing activity reported. One factor that restrains additional growth of this market sector appears to be the security of electronic payments made for goods and services purchased on-line. In particular, credit card or debit card information inputted into the mobile communications device, typically a cellular telephone, is typically transmitted in an un-encrypted form simply because encryption keys that would need to be shared between the communications device and payment engine in order to encrypt and to decrypt the relevant data cannot be provided in practice.

This being so, a typical mobile commerce transaction developed on a mobile device is illustrated in FIG. 1. In such an application multiple mobile devices, in this instance cellular telephones (A), are provided wherein communication is enabled via a wireless network (B) with selected webpage servers (C) of multiple suppliers, such as online stores or booking applications. In order to complete a transaction it is often required to perform a payment and these applications need to connect to payment systems to facilitate the actual payment by transmitting the payment details to a backend server to perform the actual payment.

A mobile application would normally transmit the relevant data that typically includes credit or debit card or other financial account data to the webpage server or its associated payment engine using a secure TCP/IP protocol (e.g. HTTPS).

However, in most cases this level of security is not really sufficient. Each of the e-commerce stores needs to develop code to integrate to a payment engine or a financial switch (D) to perform the payment that is ultimately only finalised when the relevant banking institution (E) has cleared the transaction typically in accumulated batches of transactions.

Such applications are typically complicated pieces of development, but it is obviously necessary to ensure the integrity of the application. Every application on the mobile device that needs to capture payment will require the same functionality to capture the payment details, securely transmit the data to a backend system and then to integrate and pass these details to a payment engine or financial switch to perform the transaction. This is a substantial duplication of code both on the mobile device and the backend server. Of course, it is to be remembered that mobile devices have a limited amount of electronic capacity for processing and storing data.

Furthermore, payment details from online stores ultimately go through a financial switch (e.g. Visa or Mastercard etc). These transactions enter the switch in the country of the online store and not the country of the user making the payment. As a result these transactions are normally not conducted in real time and are processed batchwise.

A typical mobile commerce system would thus gather the payment information from the user and then submit this data to a backend server that then connects to a payments engine. This requires that the mobile commerce provider has online connectivity to the payment engine and has implemented the often tricky interface to the payment engine.

The general difficulties have led to the creation of various payment organisations often referred to as financial cyber mediaries, probably the most well-known of which is the E-BAY™ owned organisation known as PAYPAL™, an e-mail based payment system in which payment is collected by the payment organisation and subsequently paid over to the recipient.

Various other efforts have been made to enhance the security of electronic payments and in recent times a cellular telephone based payment system by the name of MOBILLCASH™ has been introduced that avoids the problem by adding payments to the actual cell phone account. However, this solution may well be unacceptable to cellular telephone service providers in that their responsibility of securing payments of their accounts is substantially increased and the addition of service functions outside of the provision of a telephone service may not be acceptable.

Payment for goods or services purchased over the Internet therefore represents a serious technical problem that existing solutions have not been able to overcome to a satisfactory extent and in a satisfactorily secure manner.

OBJECT OF THE INVENTION

It is an object of this invention to provide a mobile commerce payment system and components thereof that avoid at least some of the disadvantages of the existing payment systems that are outlined above.

SUMMARY OF THE INVENTION

In accordance with one aspect of this invention there is provided a mobile commerce system in which multiple wireless mobile communications devices (mobile devices) each has a unique electronic identification and processing circuit capable of encrypting data utilizing an encryption key and wherein each mobile device has a first application providing connectivity to commercial webpage servers for purposes that include the conduct of selected transactions involving a payment for goods or services and wherein the mobile device is independently enabled to conduct financial transactions in real time by communication with a financial institution, the mobile commerce system being characterized in that the mobile device further has a second application (herein termed mobile payment application) adapted to interact with the first application to receive data as to a payment required to conclude a transaction conducted by way of a commercial webpage server by way of the first application, to process such data to cause the creation of an instruction to the financial institution to make a payment to a payee designated by way of such data with the instruction being encrypted utilizing the unique electronic identification and processing circuit, wherein the encrypted instruction is transmitted to the financial institution, and a payment report is received from the financial institution.

Further features of the invention provide for the communications device to be a mobile telephone, in particular a cellular telephone; for the unique electronic identification and processing circuit to be that of a subscriber identity module (SIM) card that typically has at least one unique encryption key embedded therein at factory level; for the webpage server to be associated with the World Wide Web; and for the mobile payment application to be adapted to transmit a successful payment report to the webpage server or associated payment engine to complete the transaction or, in the alternative, or in addition, for the system to be such that the financial institution transmits a successful payment report directly to the webpage server or associated payment engine.

The invention also provides a mobile communications device adapted to operate as a mobile device in a system as defined above.

The invention still further provides a method of performing a secure online commercial transaction using a mobile communications device that has a unique electronic identification and processing circuit capable of encrypting data utilizing an encryption key and wherein the mobile device has a first application providing connectivity to commercial webpage servers for purposes that include the conduct of selected transactions involving a payment for goods or services and wherein the mobile device is independently enabled to conduct financial transactions in real time by communication with a financial institution, the method comprising the steps of operating the wireless mobile communications device to connect to a commercial webpage server offering goods or services in exchange for payment therefor, selecting goods or services for which payment is required thereby initiating a transaction, and receiving information as to payment required, the method being characterized in that a second application (mobile payment application) resident on the communications device is adapted to interact with the first application to receive data containing information as to the payment required to conclude the transaction initiated by way of the commercial webpage server utilizing said first application, processing such data to cause the creation of an instruction to the financial institution to make a payment to a payee designated by way of such data wherein the instruction is encrypted utilizing the unique electronic identification and processing circuit wherein the encrypted instruction is transmitted to the financial institution from the mobile communications device, and a payment report is received by the mobile communications device from the financial institution.

Further features of the method of the invention will be quite apparent from what is set out above.

In order that the invention may be more fully understood an expanded description thereof follows with reference to the accompanying drawings.

BRIEF DESCRIPTION OF THE DRAWINGS

In the drawings:—

FIG. 1 is a schematic illustration of a common prior art system for the payment of goods and services in a mobile commerce situation; and,

FIG. 2 is a similar illustration of a system according to the invention.

DETAILED DESCRIPTION WITH REFERENCE TO THE DRAWINGS

In its most simple implementation, and as illustrated in FIG. 2, a mobile commerce system according to the invention may include multiple wireless mobile communications devices, in this instance cellular telephones (1), each having a unique electronic identification and processing circuit capable of encrypting data utilizing an encryption key, in this instance in the form of a SIM card (2). As will be apparent to those skilled in the art the SIM card has at least one encryption key loaded onto it at factory level for the encryption of personal identification numbers (PINs) and, in this instance, payment details generated by the mobile payment application. The SIM card can thus be used to sign the transaction using hardware algorithms in the SIM and security keys that reside thereon. Encryption of this nature renders a transaction significantly more secure than payments utilising existing expedients of online stores and booking applications according to the prior art.

Each mobile device has a browser in the form of a first software application providing connectivity by way of a wireless network (3) to commercial web page servers (4) for purposes that include the conduct of selected transactions involving a payment for goods or services in well known manner.

Each mobile device is independently enabled to conduct financial transactions in real time by communication with a financial institution, and whilst there are various possibilities, applicant prefers that their own cellular telephone-based banking system promoted under the trade mark FUNDAMO™ be employed.

As provided by this invention, each mobile device further has a second software application in the form of a mobile payment application adapted to interact with the first application to receive data as to a payment required by a commercial webpage server (4) for completion of a transaction implemented by way of the first application. Such interaction may take place by way of a plugin written for the browser that connects to the mobile device in any suitable or appropriate manner. The mobile payment application is adapted to process such data to create an instruction to the financial institution to make a payment to a payee designated by the webpage server and to encrypt the instruction utilizing the encryption key present in the SIM card so that an encrypted instruction is transmitted to a co-operant backend server (5) that operates in concert with a financial institution (6). This is done by using the 3DES algorithm and a key that was earlier provisioned onto the SIM by the mobile operator.

The mobile payment application is thus a software application that resides on the mobile device alongside other applications. It has an open application programming interface (API) that takes payment details and prompts the user to enter a personal identification number (PIN). The details can be sent to the application either from another application on the phone or via another connection method from an application that does not reside on the phone. Examples of this are from a retail till, point-of-sales device or from another mobile device. Where the application submitting the details does not reside on the mobile device the payment details could be sent using a number of different wireless communication methods such as SMS, Wi-Fi and Bluetooth.

The payment details would normally include the identifier of the application sending the request, payment amount and payment reference. The mobile payment application would then display to the user the payment details and ask the user to verify the payment by entering a PIN. This PIN may then be used to sign the payment using ISO PIN encryption algorithms and a secure key that resides on the SIM card. The payment details are then sent from the mobile payment application to the cooperant backend server.

The payment application associated with the backend server is adapted to send a payment report, either successful or unsuccessful, to the relevant mobile device and the mobile payment application on the mobile device, if the payment is successful, is adapted to transmit a payment report to the webpage server in order to conclude the transaction.

As an alternative, or in addition, the backend server could be adapted to transmit a successful payment report directly to the webpage server in order to enhance the confidence in the report.

It will be understood that by having a single mobile payment application that performs the payment portion of the transaction, for example, an on-line store or booking application, the latter applications are not required to connect to a payment engine or financial switch. Any duplication of code is thus also eliminated.

Still further, the size of the online store or booking application is reduced by removing the payment portion from the application. A single payment application of this nature that all the online stores and booking systems can use will greatly reduce the space restrictions on the mobile device.

It is further to be noted that a system according to the invention will communicate with a backend application that resides in the user's country and there are significant advantages to this, particularly in terms of checking user balances and user PIN's. Also, transactions conducted using a system of this invention can be carried out in real time thereby obviating any difficulties associated with subsequent clearing in batches of accumulated transactions.

It will be understood that numerous variations may be made to be system described above without departing from the scope hereof. 

The invention claimed is:
 1. A mobile communication device, configured to communicate with a first server associated with a financial institution, the mobile communication device comprising: an electronic identification circuit adapted to: store an encryption key; and a mobile payment application adapted to: receive, from a first software application in the mobile communication device, payment details for performing a payment transaction to purchase goods or services, wherein the first software application is adapted to communicate with a second server associated with a webpage that offers the goods or the services being purchased, and the payment details include a payee designated by the second server; create an instruction containing the payment details; encrypt the instruction containing the payment details utilizing the encryption key stored on the electronic identification circuit to generate an encrypted instruction; send the encrypted instruction to the first server to make a payment in real time to the payee designated by the second server; receive, from the first server, a payment report for the payment transaction in response to the encrypted instruction sent to the first server by the mobile communication device; and transmit the payment report to the second server after the payment report is received by the mobile communication device to complete the payment transaction.
 2. The mobile communication device of claim 1, wherein the first software application is a browser application.
 3. The mobile communication device of claim 1, wherein the mobile payment application is further adapted to prompt a user for entry of a personal identification number (PIN).
 4. The mobile communication device of claim 1, wherein the mobile communication device further includes a second software application that uses the mobile payment application to perform payment transactions.
 5. The mobile communication device of claim 1, wherein the mobile communication device is a mobile phone.
 6. The mobile communication device of claim 1, wherein the electronic identification circuit is a subscriber identity module (SIM).
 7. The mobile communication device of claim 1, wherein the first server transmits a successful payment report to the second server.
 8. The mobile communication device of claim 1, wherein the payment details further include a payment amount for the payment transaction and an identifier of the first software application.
 9. The mobile communication device of claim 1 wherein the payment details further comprise a payment amount for the transaction, a payment reference, and an identifier for the mobile payment application, and wherein the mobile payment application is further adapted to prompt a user for entry of a personal identification number (PIN) and then use the personal identification number and the encryption key to sign the payment details.
 10. The mobile communication device of claim 1, wherein the encryption key is provisioned on the electronic identification circuit by a mobile operator.
 11. A method for performing a payment transaction using a mobile communication device communicatively coupled to a first server associated with a financial institution and a second server associated with a webpage that offers goods or services, the mobile communication device including an electronic identification circuit and a mobile payment application, the method comprising: receiving, at the mobile payment application in the mobile communication device, payment details for the payment transaction to purchase the goods or the services, the payment details including a payee designated by the second server; creating an instruction containing the payment details; encrypting the instruction containing the payment details utilizing an encryption key stored on the electronic identification circuit to generate an encrypted instruction; sending the encrypted instruction to the first server to make a payment in real time to the payee designated by the second server; receiving, from the first server, a payment report for the payment transaction in response to the encrypted instruction sent to the first server by the mobile communication device; and transmitting, from the mobile payment application in the mobile communication device, the payment report to the second server to complete the payment transaction after the payment report is received by the mobile communication device.
 12. The method of claim 11, wherein the payment details are received from a first software application in the mobile communication device other than the mobile payment application.
 13. The method of claim 12, wherein the first software application is a browser application.
 14. The method of claim 12, further comprising: receiving payment details for another payment transaction from a second software application in the mobile communication device.
 15. The method of claim 12, wherein the payment details further include an identifier of the first software application.
 16. The method of claim 11, wherein the mobile communication device is a mobile phone.
 17. The method of claim 11, wherein the electronic identification circuit is a subscriber identity module (SIM).
 18. The method of claim 11, further comprising: prompting a user for entry of a personal identification number (PIN).
 19. The method of claim 11, wherein the first server transmits a successful payment report to the second server.
 20. The method of claim 11, wherein the payment details are received from a point-of-sale device.
 21. The method of claim 11, wherein the payment details are received from another mobile communication device.
 22. The method of claim 11, wherein the payment details further include a payment amount for the payment transaction.
 23. The method of claim 11 wherein the payment details further comprise a payment amount for the transaction, a payment reference, and an identifier for the mobile payment application, and wherein the method further comprises: prompting a user for entry of a personal identification number (PIN); and signing the payment details with the personal identification number and the encryption key. 